根据云计算资源建立了资源受限设备弹性应用的安全模型.首先介绍了由一个或多个Weblet组成的一个弹性应用程序,每个Weblet可在移动设备端或云端启动,Weblet之间可根据所处的计算环境的动态变化或用户的配置进行迁移.分析了该模式的安全性,提出建立弹性应用程序的安全设计模型,包括实现Weblet运行所在的移动设备端和云端之间的身份验证、安全会话管理和通过外部网络的访问服务.该模型解决了Weblet之间的安全迁移和授权云Weblet通过外部Web网络去访问敏感用户数据的问题.该方案能应用在云计算场景,如在企业应用环境下的私有云和公有云之间的应用集成.%Based on elastic computing resources from clouds, a security model for elastic applications of resourceconstrained devices was set up. First, an elastic application consisting of one or more Weblets was introduced. Each Weblet could be launched on a device or cloud, and could be migrated between them according to dynamic changes of the computation environment or user preferences on the device. Then, the security requirement of access pattern was analyzed. Security design model for elastic applications was proposed, which included the authentication and secure session management between Weblets running mobile device side and those on the cloud. The proposed model resolves security migration among Weblets and authorizes cloud Weblets to access sensitive user data via external Web services. The principles can be applied in cloud computation scenarios such as application integration between private and public clouds in an enterprise environment.
展开▼
